package com.lj.demo.ucenterService.controller;

import com.baomidou.mybatisplus.core.conditions.query.QueryWrapper;
import com.google.gson.Gson;
import com.lj.demo.commonutils.JwtUtils;
import com.lj.demo.commonutils.R;
import com.lj.demo.servicebase.exception.AException;
import com.lj.demo.ucenterService.entity.UcenterMember;
import com.lj.demo.ucenterService.service.UcenterMemberService;
import com.lj.demo.ucenterService.utils.ConstantPropertiesUtil;
import com.lj.demo.ucenterService.utils.HttpClientUtils;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.data.redis.core.RedisTemplate;
import org.springframework.stereotype.Controller;
import org.springframework.web.bind.annotation.*;

import javax.servlet.http.HttpServletRequest;
import javax.servlet.http.HttpSession;
import java.io.UnsupportedEncodingException;
import java.net.URLEncoder;
import java.sql.Time;
import java.util.HashMap;
import java.util.concurrent.TimeUnit;

/**
 * Created with IntelliJ IDEA.
 *
 * @Auther: liujiang
 * @Date: 2020/12/24/22:23
 * @Description:  微信登录接口
 */

@Controller
@CrossOrigin
@RequestMapping("/api/ucenter/wx")
public class WxApiController {

    @Autowired
    private UcenterMemberService ucenterMemberService;

    //注入redis方法
    @Autowired
    private RedisTemplate<String, String> redisTemplate;

    @GetMapping("login")
    public String genQrConnect(HttpSession session) {

        // 微信开放平台授权baseUrl
        String baseUrl = "https://open.weixin.qq.com/connect/qrconnect" +
                "?appid=%s" +
                "&redirect_uri=%s" +
                "&response_type=code" +
                "&scope=snsapi_login" +
                "&state=%s" +
                "#wechat_redirect";

        // 回调地址
        String redirectUrl = ConstantPropertiesUtil.WX_OPEN_REDIRECT_URL; //获取业务服务器重定向地址
        try {
            redirectUrl = URLEncoder.encode(redirectUrl, "UTF-8"); //url编码
        } catch (UnsupportedEncodingException e) {
            throw new AException(20001, e.getMessage());
        }

        // 防止csrf攻击（跨站请求伪造攻击）
        //String state = UUID.randomUUID().toString().replaceAll("-", "");//一般情况下会使用一个随机数
        String state = "ajiang";//为了让大家能够使用我搭建的外网的微信回调跳转服务器，这里填写你在ngrok的前置域名
        System.out.println("state = " + state);


        // 采用redis等进行缓存state 使用sessionId为key 30分钟后过期，可配置
        //键："wechar-open-state-" + httpServletRequest.getSession().getId()
        //值：satte
        //过期时间：30分钟
        redisTemplate.opsForValue().set(session.getId(), state, 5, TimeUnit.MINUTES);


        //生成qrcodeUrl
        String qrcodeUrl = String.format(
                baseUrl,
                ConstantPropertiesUtil.WX_OPEN_APP_ID,
                redirectUrl,
                state);

        return "redirect:" + qrcodeUrl;
    }

    @GetMapping("/callback")
    public String callback(String code, String state, HttpSession session) {
        //获得票据
        //System.out.println("code:" + code);
        //System.out.println("state：" + state);

        //从redis中将state获取出来，和当前传入的state作比较
        //如果一致则放行，如果不一致则抛出异常：非法访问
        String redisState = redisTemplate.opsForValue().get(session.getId());
        if (!state.equals(redisState)) throw new AException(20001, "非法访问");

        //向认证服务器发送请求换取access_token
        String baseAccessTokenUrl = "https://api.weixin.qq.com/sns/oauth2/access_token" +
                "?appid=%s" +
                "&secret=%s" +
                "&code=%s" +
                "&grant_type=authorization_code";

        String accessTokenUrl = String.format(baseAccessTokenUrl,
                ConstantPropertiesUtil.WX_OPEN_APP_ID,
                ConstantPropertiesUtil.WX_OPEN_APP_SECRET,
                code);

        String result = null;
        try {
            result = HttpClientUtils.get(accessTokenUrl);
        } catch (Exception e) {
            throw new AException(20001, "获取access_token失败");
        }

        //解析json字符串
        Gson gson = new Gson();
        HashMap map = gson.fromJson(result, HashMap.class);
        String accessToken = (String) map.get("access_token");
        String openid = (String) map.get("openid");

        //查询数据库当前用用户是否曾经使用过微信登录
        QueryWrapper<UcenterMember> queryWrapper = new QueryWrapper<>();
        queryWrapper.eq("openid", openid);
        UcenterMember member = ucenterMemberService.getOne(queryWrapper);
        if (member == null) {//新用户注册
           // System.out.println("新用户注册");

            //访问微信的资源服务器，获取用户信息
            String baseUserInfoUrl = "https://api.weixin.qq.com/sns/userinfo" +
                    "?access_token=%s" +
                    "&openid=%s";
            String userInfoUrl = String.format(baseUserInfoUrl, accessToken, openid);
            String resultUserInfo = null;
            try {
                resultUserInfo = HttpClientUtils.get(userInfoUrl);
               // System.out.println("resultUserInfo==========" + resultUserInfo);
            } catch (Exception e) {
                throw new AException(20001, "获取用户信息失败");
            }
            //解析json
            HashMap<String, Object> mapUserInfo = gson.fromJson(resultUserInfo, HashMap.class);
            String nickname = (String)mapUserInfo.get("nickname");
            String headimgurl = (String)mapUserInfo.get("headimgurl");

            //向数据库中插入一条记录
            member = new UcenterMember();
            member.setNickname(nickname);
            member.setOpenid(openid);
            member.setAvatar(headimgurl);
            ucenterMemberService.save(member);

        }

//        //TODO 登录
        //使用jwt根据member对象生成token字符串
        String jwtToken = JwtUtils.getJwtToken(member.getId(), member.getNickname());
        //最后：返回首页面，通过路径传递token字符串
        return "redirect:http://localhost:3000?token="+jwtToken;
//
//        return "redirect:http://localhost:3000";

//        try {
//            //1 获取code值，临时票据，类似于验证码
//            //2 拿着code请求 微信固定的地址，得到两个值 accsess_token 和 openid
//            String baseAccessTokenUrl = "https://api.weixin.qq.com/sns/oauth2/access_token" +
//                    "?appid=%s" +
//                    "&secret=%s" +
//                    "&code=%s" +
//                    "&grant_type=authorization_code";
//            //拼接三个参数 ：id  秘钥 和 code值
//            String accessTokenUrl = String.format(
//                    baseAccessTokenUrl,
//                    ConstantPropertiesUtil.WX_OPEN_APP_ID,
//                    ConstantPropertiesUtil.WX_OPEN_APP_SECRET,
//                    code
//            );
//            //请求这个拼接好的地址，得到返回两个值 accsess_token 和 openid
//            //使用httpclient发送请求，得到返回结果
//            String accessTokenInfo = HttpClientUtils.get(accessTokenUrl);
//
//            //从accessTokenInfo字符串获取出来两个值 accsess_token 和 openid
//            //把accessTokenInfo字符串转换map集合，根据map里面key获取对应值
//            //使用json转换工具 Gson
//            Gson gson = new Gson();
//            HashMap mapAccessToken = gson.fromJson(accessTokenInfo, HashMap.class);
//            String access_token = (String)mapAccessToken.get("access_token");
//            String openid = (String)mapAccessToken.get("openid");
//
//            //把扫描人信息添加数据库里面
//            //判断数据表里面是否存在相同微信信息，根据openid判断
//           // UcenterMember member = ucenterMemberService.getOpenIdMember(openid);
//            //查询数据库当前用用户是否曾经使用过微信登录
//       QueryWrapper<UcenterMember> queryWrapper = new QueryWrapper<>();
//        queryWrapper.eq("openid", openid);
//        UcenterMember member = ucenterMemberService.getById(queryWrapper);
//            if(member == null) {//memeber是空，表没有相同微信数据，进行添加
//
//                //3 拿着得到accsess_token 和 openid，再去请求微信提供固定的地址，获取到扫描人信息
//                //访问微信的资源服务器，获取用户信息
//                String baseUserInfoUrl = "https://api.weixin.qq.com/sns/userinfo" +
//                        "?access_token=%s" +
//                        "&openid=%s";
//                //拼接两个参数
//                String userInfoUrl = String.format(
//                        baseUserInfoUrl,
//                        access_token,
//                        openid
//                );
//                //发送请求
//                String userInfo = HttpClientUtils.get(userInfoUrl);
//                //获取返回userinfo字符串扫描人信息
//                HashMap userInfoMap = gson.fromJson(userInfo, HashMap.class);
//                String nickname = (String)userInfoMap.get("nickname");//昵称
//                String headimgurl = (String)userInfoMap.get("headimgurl");//头像
//
//                member = new UcenterMember();
//                member.setOpenid(openid);
//                member.setNickname(nickname);
//                member.setAvatar(headimgurl);
//                ucenterMemberService.save(member);
//            }
//
//            //使用jwt根据member对象生成token字符串
//            String jwtToken = JwtUtils.getJwtToken(member.getId(), member.getNickname());
//            //最后：返回首页面，通过路径传递token字符串
//            return "redirect:http://localhost:3000?token="+jwtToken;
//        }catch(Exception e) {
//            throw new AException(20001,"登录失败");
//        }
    }

}